Re: What ASN.1 got right

Phillip Hallam-Baker <phill@hallambaker.com> Tue, 02 March 2021 06:46 UTC

Return-Path: <hallam@gmail.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9DF053A2712 for <ietf@ietfa.amsl.com>; Mon, 1 Mar 2021 22:46:11 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.399
X-Spam-Level:
X-Spam-Status: No, score=-1.399 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FORGED_FROMDOMAIN=0.249, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.25, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BRK3UNcgPa1N for <ietf@ietfa.amsl.com>; Mon, 1 Mar 2021 22:46:09 -0800 (PST)
Received: from mail-yb1-f180.google.com (mail-yb1-f180.google.com [209.85.219.180]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BF7B53A2710 for <ietf@ietf.org>; Mon, 1 Mar 2021 22:46:09 -0800 (PST)
Received: by mail-yb1-f180.google.com with SMTP id p193so19667114yba.4 for <ietf@ietf.org>; Mon, 01 Mar 2021 22:46:09 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=HPbqaQXND4wNl+S5kqsI+FMe9ZfVEVxWpAQlJ/OmXuA=; b=VQiN8FiT5HTvL7m59vQBXU07mYqwN1K3aLZEyofSey6Uprejyyu5vWrFwklYMtvhv3 GsM/MDZy7klMhTB25lSc2cT4ceGAkVpNeI1I8X2nBVF4k24O6Xhu2YCRM3P7WpV5ces3 kOis0wzeGTmSk/t0TUVygUxdVeeHo0GLVK0EIZG1mKL+lwLj5l77tNnjNo8cN2XkoOUx LH7ZuPuDuWGhVEzB0zRnz5g7n+9HIVdgDwBJDg7ie45laPwKNgx+61Q1KxvQuMlMiLIw ikHkh804gr4GbufsHH6QR/kUaIeEP5503hEoW7UOA+iTlKn0M0GAUc/N4jR1Kz7mpmjC Cvmw==
X-Gm-Message-State: AOAM531/jlFFrYGmyn7fCOnywGD2iA3zKA6QorZZ3nzIsb/xLxTJWOxQ 8ioO07dOrurG/R1Q19lB34WFaf33ccIFYN8Z14g=
X-Google-Smtp-Source: ABdhPJwgLVPIsby3CTomK1eXJfGr7+bJR4eAlASL8En8eVzXWBImSN1GBri8MRr7z7sd5O+G5dVoOtkv4Nyx9FIo1Fc=
X-Received: by 2002:a25:ad67:: with SMTP id l39mr29260951ybe.172.1614667568912; Mon, 01 Mar 2021 22:46:08 -0800 (PST)
MIME-Version: 1.0
References: <20210302010731.GL30153@localhost> <0632b948-9ed1-f2bd-96da-9922ebb2aa60@mtcc.com> <CAMm+Lwjgv1jj6txiDRik_3by_FL0RKRqD=-8ds0bPvDKDw98-g@mail.gmail.com> <20210302060622.GR30153@localhost>
In-Reply-To: <20210302060622.GR30153@localhost>
From: Phillip Hallam-Baker <phill@hallambaker.com>
Date: Tue, 2 Mar 2021 01:45:59 -0500
Message-ID: <CAMm+LwhZn09i_u_AsrQvHdmXy0D02Ypr0hhdd=tDTeM-EErAeg@mail.gmail.com>
Subject: Re: What ASN.1 got right
To: Nico Williams <nico@cryptonector.com>
Cc: Michael Thomas <mike@mtcc.com>, IETF Discussion Mailing List <ietf@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000e01fcb05bc8816ea"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/Z-l1Zn7SgFQu4x9j0HFvLqR9CvQ>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 02 Mar 2021 06:46:12 -0000

On Tue, Mar 2, 2021 at 1:06 AM Nico Williams <nico@cryptonector.com> wrote:

> On Tue, Mar 02, 2021 at 12:28:03AM -0500, Phillip Hallam-Baker wrote:
>
> > None of the systems on the table in 1995 is going to work and if you want
> > to understand why go get a machine that SHIPPED with Windows 95, boot it
> > and see what we had to work with.
> >
> > PKIX and the WebPKI were built for 30MHz machines with 32 bit processors
> > and 4MB of memory.
>
> I don't follow.  Given all the CPU, RAM, and storage available now, what
> would you do differently?  Mesh, yes, I know, but, remind me how Mesh
> uses all that extra HW that PKIX leaves on the table?
>

The original goal of the Mesh was to make computers easier to use by making
them more secure.

WebPKI is really limited to authenticating organizations. Private key
management considerations are pretty much out of scope. The assumption is
that Alice has a public key pair which is stretched to separate keys for
encryption and decryption.

The Mesh has a separate key for every function and for every device and
application. So if Alice has a dozen machines connected to her Mesh, they
each have separate encryption, authentication and signature keys. And they
are all used for threshold operations which really don't fit into the RSA
scheme of things.

Introducing more keys allows me to deal with all the real world use cases
that get ignored like what to do if Alice loses her phone, if she is
planning to go through an airport in a hostile police state, etc. etc.

Sure, now I have the architecture, we could go back and spend ten years
working out how to retrofit to PKIX. Or we could write some end to end
secure applications that are exactly as easy to use as the applications
people use today. I am talking about zero user impact security, zero trust
models, etc.

Social media where the service cannot read any of the posts.



> > If you want a decent PKI for user authentication you need to be willing
> to
> > do Internet2 for PKI and do some blue sky research.
>
> No please.  That's how we got X.500 naming to begin with.  Subject Alt
> Names exist because X.500 failed.
>
> SMTP and RFCx822-style email address naming killed X.400 because X.400
> inherently meant an awful UX.  X.500 naming needs to die.
>

I come to bury X.500 naming, not to praise it.

People don't have DNS names and a majority of people on the planet can't
afford $10/yr to rent one. And that tomato has sailed.

We need names that cost $0.10 for life. If we can get the price that low,
we can get to universal coverage some day. We can find someone to pay even
if the end user can't afford it.

$10/yr is a thousand bucks over a lifetime. Won't be able to find someone
to sign that check for the planet.